linkfox-shopee-store-payment

Fail

Audited by Snyk on Jul 16, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.70). The list is mostly official Shopee docs and internal LinkFox service endpoints, but one entry is a direct downloadable ZIP (https://agent-files.linkfox.com/skills/linkfox-onboarding/release.zip) — a direct archive distribution channel that can be used to deliver executables and should be treated as potentially risky unless its integrity and trustworthiness are verified and the user explicitly authorizes the download.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

  • Third-party content exposure detected (high risk: 0.75). Runtime path: the script calls Shopee via POST /shopee/developerProxy, then emit_result() prints/summarizes the returned JSON (including any free-text fields from Shopee) into the agent’s LLM context via stdout.

MEDIUM W009: Direct money access capability detected (payment gateways, crypto, banking).

  • Direct money access detected (high risk: 1.00). This skill is explicitly the Shopee "Payment" module and exposes Shopee payment APIs via a developerProxy (api/v2/payment/...). It lists payout/escrow/wallet-related endpoints and scripts (get_payout_detail, get_payout_info, get_wallet_transaction_list, escrow and payout concepts). Because it is a purpose-built financial/payment API integration (capable of interacting with store payouts/wallet/settlement), it constitutes direct financial execution authority.

Issues (3)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

W011
MEDIUM

Third-party content exposure detected (indirect prompt injection risk).

W009
MEDIUM

Direct money access capability detected (payment gateways, crypto, banking).

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jul 16, 2026, 08:09 AM
Issues
3